Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/K2JPFaMGmbfgqVMcXXxLoUzBC6E.roa
File: K2JPFaMGmbfgqVMcXXxLoUzBC6E.roa (raw, json)
Hash identifier: Jy9PgTXg1R9sDgp4FTIPCUwM8z8v54LxuFEYAoB1xyM=
Subject key identifier: 2B:62:4F:15:A3:06:99:B7:E0:A9:53:1C:5D:7C:4B:A1:4C:C1:0B:A1
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 01856D418A30090C2732A8A23B37538F0588
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/K2JPFaMGmbfgqVMcXXxLoUzBC6E.roa
Signing time: Sun 01 Jan 2023 12:14:49 +0000
ROA not before: Sun 01 Jan 2023 12:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16099
IP address blocks: 2a01:190:15ed::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:8a:30:09:0c:27:32:a8:a2:3b:37:53:8f:05:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 12:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b624f15a30699b7e0a9531c5d7c4ba14cc10ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7e:81:a0:2b:f2:3c:de:cd:f3:fa:27:78:33:
2b:d0:99:0a:fa:ab:05:f3:22:b0:20:21:9a:c0:de:
e3:8b:10:2d:74:85:4a:c7:04:8c:dc:17:ac:18:a5:
90:1e:77:f9:35:59:49:67:83:63:8c:24:26:4c:ee:
3a:8d:69:bc:65:07:86:99:89:8b:8c:b5:c7:f5:d0:
64:6d:5b:f1:9b:e0:dc:7b:af:0b:46:6d:a1:ad:ff:
fb:e8:79:6e:74:76:54:65:4b:db:31:72:e1:b1:b3:
11:1c:d6:63:1b:94:c8:28:1a:a4:21:e7:c6:ee:d1:
af:bd:35:e6:79:52:ca:6c:fa:c0:7d:ff:a6:25:6b:
0e:10:21:a5:19:d1:c6:db:72:5b:b3:91:f6:11:52:
7a:65:14:78:ca:93:b5:76:2c:ed:a3:c4:72:e9:9d:
bb:a0:7b:17:16:9c:c5:81:ae:d1:cb:1b:6f:40:e4:
1d:b4:b4:46:c7:a6:a0:26:a5:cb:0d:58:3f:2f:74:
f0:a0:6b:66:cd:96:3e:ab:9a:2a:d4:6c:58:b9:bb:
a5:57:82:b5:45:29:65:0f:72:db:49:e6:5e:2e:46:
e0:84:f0:0b:0f:a7:a4:8d:a5:02:99:62:94:ac:28:
6b:55:0a:1a:90:5c:61:69:d5:18:36:ef:34:93:34:
87:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:62:4F:15:A3:06:99:B7:E0:A9:53:1C:5D:7C:4B:A1:4C:C1:0B:A1
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/K2JPFaMGmbfgqVMcXXxLoUzBC6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:15ed::/48
Signature Algorithm: sha256WithRSAEncryption
cc:17:59:3a:7c:49:93:99:e1:c8:82:15:ea:d1:56:8c:47:96:
aa:42:b7:49:54:af:79:5c:17:e2:28:3d:65:b2:8d:16:8c:17:
ea:b8:64:c7:8b:87:f4:8b:57:45:0d:4e:27:2d:c8:50:6f:e6:
8d:ce:6c:d5:df:bb:9d:46:3f:34:23:ad:e5:f3:06:49:da:74:
7c:30:97:1b:11:e3:d9:78:13:d7:2e:bf:62:1f:2a:56:40:5b:
04:d2:27:c7:0d:c5:ac:16:60:fd:9f:48:05:d1:29:dd:12:fa:
e7:a4:a1:01:e7:6e:10:92:15:dc:36:0f:cb:8a:5e:3b:b0:d4:
d9:a8:0d:5f:ce:85:b0:24:c5:e3:3c:b9:9a:a3:b1:47:14:87:
1a:ff:0b:0c:15:ad:f3:83:25:87:5d:78:06:82:b9:64:62:dd:
b1:35:81:c9:a8:fe:0f:1f:a4:17:8a:47:3e:cf:19:d6:a7:03:
74:fa:9d:39:2d:75:16:1a:33:20:07:81:1a:e2:c0:a1:7e:63:
ee:06:2e:bc:31:9d:37:45:58:42:ba:1f:18:f7:2c:cf:64:6b:
56:75:4b:cb:b6:fb:e6:5b:71:47:43:d3:f3:83:cc:f4:87:a0:
6d:8b:f7:5a:c5:ae:28:e2:30:b9:a1:a4:94:05:80:7b:f5:d2:
8f:3e:6a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:11 2024 by rpki-client on console.sobornost.net